Compiler Access and Scurity

Xingbang Liu & Zijun Xia

3/7/2019

System Lock flickr photo by Yu. Samoilov shared under a Creative Commons (BY) license

What do you think?

Relation

Compiler makes computer vulnerable

System processes lead to:

1. Gaining access right

2. Changing code

Access Right?

Java as example

JDK8

Java checks file source:


FilePermission filePermission=new FilePermission("/tmp/*","read,write");
SocketPermission socketPermission=new SocketPermission("192.168.0.1:8080","listen");

Source

Access Right?

Java as example

Java also checks permission:


public void checkPermission(Permission perm)
public ProtectionDomain getProtectionDomain()
public ProtectionDomain(CodeSource var1, PermissionCollection var2)
public final CodeSource getCodeSource()
public boolean implies(Permission var1)
public final Certificate[] getCertificates()
public final URL getLocation()

Source

Access Right?

Java as example

Java also has security policy file which grants the permission

How to crack the system?

Example

1. Online compilers

Saves time

Saves resources

BUT user inputs are from Internet

How to crack the system?

Example

1. Online compilers

Gaining access:

GetEnv(), system(): allow an attacker to study and execute any command on the remote machine

GetEnv(): allows a hacker to learn information about the machine that is otherwise concealed from the web interface, such as the username and OS version.

How to creck the system?

Example

1. Online compilers

Maintaining control:

Hackers cannot input codes every time, so

execl() :allows the user to specify any arbitrary program to replace the current process

How to creck the system?

Example

2. Code optimization


g_exit; //global variable
g_exit= 1; //will be modified to break
while(g_exit)
{
...
}

Will be modified as while(1)

How to creck the system?

Example

2. Code optimization

catch the case when len is so large that buf + len wraps around and bypasses the first check

How to creck the system?

Example

2. Code optimization

Works with a flat address space, fails on a segmented architecture
Overflowed pointer is undefined, allows gcc to simply assume that no pointer overflow ever occurs on any architecture.
buf + len must be larger than buf and thus the “overflow” check always evaluates to false

Source

Solutions

Any suggestions?

Solutions

Compiler switchs

Compiler Access and Scurity

Xingbang Liu & Zijun Xia

3/7/2019

What do you think?

Relation

Compiler makes computer vulnerable

Access Right?

Java as example

Access Right?

Java as example

Access Right?

Java as example

How to crack the system?

Example

How to crack the system?

Example

How to creck the system?

Example

How to creck the system?

Example

How to creck the system?

Example

How to creck the system?

Example

Solutions

Any suggestions?

Solutions

Compiler switchs

Solutions

Sand box

The End